websec101

This is a set of vulnerable php code to teach web security.

Setup

1. Copy src/* to your web folder whatever you like
2. Create MySQL user for sqlinj, setup privileges, and import src/sqlinj/database.sql
3. chmod 777 $INSTALL_PATH/_writable

Warning

PLEASE INSTALL THESE CODE IN A ISOLATED ENVIRONMENT, OR YOUR COMPUTER MAY GOT HACKED.

License

All the code are released under MIT License. Please notice that all images and the-hunger-games-short.txt were copied from Internet.